Описание
IBM WebSphere Application Server 8.5 and 9.0 could allow a remote authenticated attacker, who has authorized access to the administrative console, to execute arbitrary code. Using specially crafted input, the attacker could exploit this vulnerability to execute arbitrary code on the system. IBM X-Force ID: 292641.
Ссылки
- VDB EntryVendor Advisory
- Vendor Advisory
- VDB EntryVendor Advisory
- Vendor Advisory
Уязвимые конфигурации
Конфигурация 1Версия от 8.5.0.0 (включая) до 8.5.5.25 (включая)Версия от 9.0.0.0 (включая) до 9.0.5.20 (включая)
Одно из
cpe:2.3:a:ibm:websphere_application_server:*:*:*:*:*:*:*:*
cpe:2.3:a:ibm:websphere_application_server:*:*:*:*:*:*:*:*
EPSS
Процентиль: 51%
0.00275
Низкий
7.2 High
CVSS3
Дефекты
CWE-250
NVD-CWE-Other
Связанные уязвимости
CVSS3: 7.2
github
больше 1 года назад
IBM WebSphere Application Server 8.5 and 9.0 could allow a remote authenticated attacker, who has authorized access to the administrative console, to execute arbitrary code. Using specially crafted input, the attacker could exploit this vulnerability to execute arbitrary code on the system. IBM X-Force ID: 292641.
EPSS
Процентиль: 51%
0.00275
Низкий
7.2 High
CVSS3
Дефекты
CWE-250
NVD-CWE-Other